Remote Security Engineer II Job in Bellevue, WA Smartsheet

Who you are

• 3+ years of total experience in the field of cyber security and particularly in security engineering
• Extensive experience in delivering security solutions across multiple environments including on-prem and cloud infrastructure - AWS experience is a plus
• Experience conducting security reviews and threat modeling on infrastructure software and services
• Strong analytical and problem solving skills
• Experience with network security concepts and capabilities including firewalls
• Experience deploying and/or utilizing security tooling such as Endpoint Detection and Response (EDR) Virtual Private Networks (VPN) Vulnerability scanning tools Cloud Security Posture Management (CSPM) Security Information and Event Management (SIEM)
• Experience with NIST frameworks is a plus (800-53, NCF)
• Basic understanding of DevOps tools and practices (e.g., Git, Docker)
• Knowledge of cloud platforms (e.g., AWS, GCP) and their security features
• Experience with Infrastructure-as-code and policy-as-code is a plus
• Experience with hardened image builds and deployment is a plus
• Strong problem-solving skills with attention to detail and an eagerness to learn and adapt to new technologies and challenges
• Relevant certifications such as CompTIA Security+, AWS Certified Security – Specialty, or similar
• This job is only available to U.S. citizens, U.S. lawful permanent residents, U.S. nationals, and certain temporary residents, refugees, and asylees.

What the job involves

• Assist in integrating security tools and practices into team CI/CD pipelines to identify vulnerabilities early in the development lifecycle
• Develop and maintain scripts to automate security tasks such as scanning, monitoring, and patch management
• Implement security alerting, provide support to Security Operations to respond to potential threats and vulnerabilities, and participate in rotational on-call support
• Work with microservice DevOps, IT support, and compliance teams to ensure secure coding practices and configurations are followed, vulnerabilities are addressed, and security controls are implemented
• Help manage and secure cloud environments (e.g., AWS, GCP) by implementing best practices and security controls
• Maintain up-to-date documentation of security processes, tools, and configurations
• Stay informed about the latest security trends, vulnerabilities, and tools to continuously improve the security posture of the organization